-
semgr8s loads rules from remote and configmaps. a single broken rule could break the policy engine as a whole. rules are also frequently updated. rules must be scanned against a schema to ensure broke…
-
e.g. https://github.com/hashicorp/terraform-provider-aws/actions/runs/7248202777/job/19743662176:
```
Run semgrep $COMMON_PARAMS --config .ci/.semgrep-caps-aws-ec2.yml
semgrep $COMMON_PARAMS --…
-
**Describe the bug**
An `exclude` pattern in a rule behaves as if it was prepended with `**/`. As a result, a pattern like `/a` matches not only at the project root but also subfolders such as `b/a…
-
**Describe the bug**
Whenever a USER attribute is enclosed in quotation marks a syntax error is triggered and a number of rows are skipped from scanning. From testing, building a Dockerfile with USER…
-
**Is your feature request related to a problem? Please describe.**
I want to match the contents of strings, treating whitespace as significant.
For example, in Terraform, I want to look for stri…
-
I am unable to scan a repo due to the unicode error which crashes the semgrep before finishing the scan. Below is output generated by semgrep:
```
$ semgrep ci --output result.json --json
…
-
**Describe the bug**
semgrep fails to parse module opens (like imports in Python) and limited scope opens and count them in its matches in OCaml.
**To Reproduce**
[Playground link](https://semgre…
-
javascript express vm2 vulnerability scanner: [here][1] misses real vulnerable code.
The vulnerable file is [here][2], and it is a part of *completely reproducible* docker image
vulnerable to [CVE-2…
-
This issue collects various links to useful Semgrep resources and documentation in one place so you can reference it if you ever get stuck.
* [semgrep.dev](https://semgrep.dev/) - Semgrep's home page…
-
This issue collects various links to useful Semgrep resources and documentation in one place so you can reference it if you ever get stuck.
* [semgrep.dev](https://semgrep.dev/) - Semgrep's home page…